Use the http context cancellation token in SignatureHashValidator.

bjorntore · bjorntore · commit ce1bceb0a35c · 2025-10-17T11:59:02.000+02:00
diff --git a/src/Altinn.App.Core/Features/Validation/Default/SignatureHashValidator.cs b/src/Altinn.App.Core/Features/Validation/Default/SignatureHashValidator.cs
@@ -9,6 +9,7 @@
 using Altinn.App.Core.Models;
 using Altinn.App.Core.Models.Validation;
 using Altinn.Platform.Storage.Interface.Models;
+using Microsoft.AspNetCore.Http;
 using Microsoft.Extensions.Logging;
 
 namespace Altinn.App.Core.Features.Validation.Default;
@@ -21,6 +22,7 @@ internal sealed class SignatureHashValidator(
     IProcessReader processReader,
     IDataClient dataClient,
     IAppMetadata appMetadata,
+    IHttpContextAccessor httpContextAccessor,
     ILogger<SignatureHashValidator> logger
 ) : IValidator
 {
@@ -56,6 +58,8 @@ public async Task<List<ValidationIssue>> Validate(
         string? language
     )
     {
+        CancellationToken cancellationToken = httpContextAccessor.HttpContext?.RequestAborted ?? CancellationToken.None;
+
         Instance instance = dataAccessor.Instance;
 
         AltinnSignatureConfiguration signingConfiguration =
@@ -67,7 +71,7 @@ public async Task<List<ValidationIssue>> Validate(
         List<SigneeContext> signeeContextsResults = await signingService.GetSigneeContexts(
             dataAccessor,
             signingConfiguration,
-            CancellationToken.None
+            cancellationToken
         );
 
         foreach (SigneeContext signeeContext in signeeContextsResults)
@@ -80,7 +84,8 @@ public async Task<List<ValidationIssue>> Validate(
                 ValidationIssue? validationIssue = await ValidateDataElementSignature(
                     dataElementSignature,
                     instance,
-                    applicationMetadata
+                    applicationMetadata,
+                    cancellationToken
                 );
 
                 if (validationIssue != null)
@@ -98,7 +103,8 @@ public async Task<List<ValidationIssue>> Validate(
     private async Task<ValidationIssue?> ValidateDataElementSignature(
         SignDocument.DataElementSignature dataElementSignature,
         Instance instance,
-        ApplicationMetadata applicationMetadata
+        ApplicationMetadata applicationMetadata,
+        CancellationToken cancellationToken
     )
     {
         var instanceIdentifier = new InstanceIdentifier(instance);
@@ -111,7 +117,8 @@ ApplicationMetadata applicationMetadata
             Guid.Parse(dataElementSignature.DataElementId),
             HasRestrictedRead(applicationMetadata, instance, dataElementSignature.DataElementId)
                 ? StorageAuthenticationMethod.ServiceOwner()
-                : null
+                : null,
+            cancellationToken
         );
 
         string sha256Hash = await GenerateSha256Hash(dataStream);
diff --git a/test/Altinn.App.Core.Tests/Features/Validators/Default/SignatureHashValidatorTests.cs b/test/Altinn.App.Core.Tests/Features/Validators/Default/SignatureHashValidatorTests.cs
@@ -12,6 +12,7 @@
 using Altinn.App.Core.Models.Validation;
 using Altinn.Platform.Register.Models;
 using Altinn.Platform.Storage.Interface.Models;
+using Microsoft.AspNetCore.Http;
 using Microsoft.Extensions.Logging;
 using Moq;
 using CoreSignee = Altinn.App.Core.Features.Signing.Models.Signee;
@@ -34,6 +35,7 @@ public SignatureHashValidatorTests()
             _processReaderMock.Object,
             _dataClientMock.Object,
             _appMetadataMock.Object,
+            new Mock<IHttpContextAccessor>().Object,
             new Mock<ILogger<SignatureHashValidator>>().Object
         );
 
